CVE-2005-3321

3 documents3 sources

Severity

4.6MEDIUM

EPSS

0.0%

top 91.08%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Novell Suse Linux Suse Suse Linux

Timeline

PublishedOct 27

Latest updateMay 1

Description

chkstat in SuSE Linux 9.0 through 10.0 allows local users to modify permissions of files by creating a hardlink to a file from a world-writable directory, which can cause the link count to drop to 1 when the file is deleted or replaced, which is then modified by chkstat to use weaker permissions.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages2 packages

▶NVDsuse/suse_linux4 versions+3

▶NVDnovell/suse_linux10.0

🔴Vulnerability Details

GHSA

GHSA-cr2w-jqc8-qg2m: chkstat in SuSE Linux 9↗2022-05-01

▶

CVEList

CVE-2005-3321: chkstat in SuSE Linux 9↗2005-10-27

▶